emacs-devel
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security flaw in pgg-gpg-process-region?


From: Richard Stallman
Subject: Re: Security flaw in pgg-gpg-process-region?
Date: Thu, 07 Sep 2006 17:13:51 -0400

    As Greg suggested, the passphrase handling should be moved from Emacs
    into a separate process (which may request special privileges to lock
    memory regions etc.).

I agree it is a good solution.

We would still face the issue of how users who never exit Emacs
can provide the passphrase to gpg-agent thru the shell buffer
without its being saved on disk.





reply via email to

[Prev in Thread] Current Thread [Next in Thread]